Our Security team has created some DLP policies that identified docs in users OneDrive For Business Sites. Since they don't have default access to those types of sites, What is the best way to allow the security team to review that content?